Reply to post: Re: CGI - The New Java/Flash

Bad boy builds beastly Bash bug botnet, boxen battered

Jamie Jones Silver badge

Re: CGI - The New Java/Flash

CGI is nothing like flash/java etc.

Chalk and cheese.

As the 'G' suggests, it's a gateway API, and a rather simple one at that.

Any half-competent web site is already setup to be 'sanitized' as you suggest as a matter of course.. It should run under it's own id, with executable scripts owned by a different user (and therefore not writable), should be chrooted/jailed if practical, and generally be sandboxed from any functionality that it would never need.

P.S. I didn't downvote you

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020